A multi-application smart card system with authentic post-issuance program modification

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi- application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PIT) in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parlies and the authenticity of the program.

Original languageEnglish
Pages (from-to)229-235
Number of pages7
JournalIEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
VolumeE91-A
Issue number1
DOIs
Publication statusPublished - Jan 1 2008

Fingerprint

Smart cards
Smart Card
One-way Hash Function
Function generators
Pseudorandom number Generator
Hash functions
Verify
Necessary

All Science Journal Classification (ASJC) codes

  • Signal Processing
  • Computer Graphics and Computer-Aided Design
  • Electrical and Electronic Engineering
  • Applied Mathematics

Cite this

@article{83347e9b55304b39a83a93e4ec0c03b1,
title = "A multi-application smart card system with authentic post-issuance program modification",
abstract = "A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi- application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PIT) in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parlies and the authenticity of the program.",
author = "Uddin, {Mohammad Mesbah} and Yasunobu Nohara and Daisuke Ikeda and Hiroto Yasuura",
year = "2008",
month = "1",
day = "1",
doi = "10.1093/ietfec/e91-a.1.229",
language = "English",
volume = "E91-A",
pages = "229--235",
journal = "IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences",
issn = "0916-8508",
publisher = "Maruzen Co., Ltd/Maruzen Kabushikikaisha",
number = "1",

}

TY - JOUR

T1 - A multi-application smart card system with authentic post-issuance program modification

AU - Uddin, Mohammad Mesbah

AU - Nohara, Yasunobu

AU - Ikeda, Daisuke

AU - Yasuura, Hiroto

PY - 2008/1/1

Y1 - 2008/1/1

N2 - A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi- application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PIT) in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parlies and the authenticity of the program.

AB - A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi- application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PIT) in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parlies and the authenticity of the program.

UR - http://www.scopus.com/inward/record.url?scp=62749166088&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=62749166088&partnerID=8YFLogxK

U2 - 10.1093/ietfec/e91-a.1.229

DO - 10.1093/ietfec/e91-a.1.229

M3 - Article

VL - E91-A

SP - 229

EP - 235

JO - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

JF - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

SN - 0916-8508

IS - 1

ER -